EP1736933A2 - Method to control the use of custom images - Google Patents

Method to control the use of custom images Download PDF

Info

Publication number
EP1736933A2
EP1736933A2 EP20060011209 EP06011209A EP1736933A2 EP 1736933 A2 EP1736933 A2 EP 1736933A2 EP 20060011209 EP20060011209 EP 20060011209 EP 06011209 A EP06011209 A EP 06011209A EP 1736933 A2 EP1736933 A2 EP 1736933A2
Authority
EP
European Patent Office
Prior art keywords
custom image
digital signature
hash
provider
user
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
EP20060011209
Other languages
German (de)
French (fr)
Other versions
EP1736933B1 (en
EP1736933A3 (en
Inventor
Andrei Obrea
Frederick W. Ryan
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Pitney Bowes Inc
Original Assignee
Pitney Bowes Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Pitney Bowes Inc filed Critical Pitney Bowes Inc
Publication of EP1736933A2 publication Critical patent/EP1736933A2/en
Publication of EP1736933A3 publication Critical patent/EP1736933A3/en
Application granted granted Critical
Publication of EP1736933B1 publication Critical patent/EP1736933B1/en
Not-in-force legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B17/00Franking apparatus
    • G07B17/00733Cryptography or similar special procedures in a franking system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3821Electronic credentials
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B17/00Franking apparatus
    • G07B17/00185Details internally of apparatus in a franking system, e.g. franking machine at customer or apparatus at post office
    • G07B17/00435Details specific to central, non-customer apparatus, e.g. servers at post office or vendor
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B17/00Franking apparatus
    • G07B17/00016Relations between apparatus, e.g. franking machine at customer or apparatus at post office, in a franking system
    • G07B17/0008Communication details outside or between apparatus
    • G07B2017/00153Communication details outside or between apparatus for sending information
    • G07B2017/00161Communication details outside or between apparatus for sending information from a central, non-user location, e.g. for updating rates or software, or for refilling funds
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B17/00Franking apparatus
    • G07B17/00733Cryptography or similar special procedures in a franking system
    • G07B2017/00741Cryptography or similar special procedures in a franking system using specific cryptographic algorithms or functions
    • G07B2017/00758Asymmetric, public-key algorithms, e.g. RSA, Elgamal
    • G07B2017/00766Digital signature, e.g. DSA, DSS, ECDSA, ESIGN
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B17/00Franking apparatus
    • G07B17/00733Cryptography or similar special procedures in a franking system
    • G07B2017/00741Cryptography or similar special procedures in a franking system using specific cryptographic algorithms or functions
    • G07B2017/00782Hash function, e.g. MD5, MD2, SHA

Definitions

  • the present invention relates to a method for printing information on a mailpiece, and, in particular, to a method for printing custom images on a mailpiece and accounting for the printing of such custom images.
  • Postage metering systems are well known in the art.
  • a postage metering system applies evidence of postage, commonly referred to as postal indicia, to an envelope or other mailpiece (directly or on a label to be applied thereto) and accounts for the value of the postage dispensed.
  • closed systems there are two basic postage metering system types: closed systems and open systems.
  • closed metering systems include conventional digital and analog (electronic and mechanical) postage meters wherein a dedicated printer is securely coupled to a metering or accounting function.
  • closed system since the printer is securely coupled and dedicated to the meter, printing evidence of postage cannot take place without accounting for the evidence of postage.
  • open metering systems include personal computer (PC) based devices with single/multi-tasking operating systems, multi-user applications and digital printers.
  • An open system metering device is a postage evidencing device with a non-dedicated printer that is not securely coupled to a secure accounting module. Open system indicia printed by the non-dedicated printer are made secure by including addressee information in the encrypted evidence of postage printed on the mailpiece for subsequent verification.
  • Digital closed system postage meters both electronic and mechanical have heretofore physically secured the link between printing and accounting.
  • the integrity of the physical meter box has been monitored by periodic physical inspections of the meters.
  • Digital closed system postage meters typically include a dedicated digital printer coupled to a device that provides metering (accounting) functionality.
  • Digital printing postage meters have removed the need for the physical inspection that was required with analog systems by cryptographically securing the link between the accounting and printing mechanisms. In essence, digital printing postage meters create a secure point to point communication link between the accounting unit and printhead.
  • the dedicated printer and the metering (accounting) device may be located in the same device and/or at the same location when placed in operation.
  • the dedicated printer may be located in a first location (i.e., the local location where indicia are to be printed), and the metering (accounting) device may be located in a remote location, such as a provider's data center.
  • the dedicated printer it is still necessary for the dedicated printer to be a secure device having cryptographic capabilities so that postage printing information, such as an indicium, received from the metering (accounting) device, and the metering (accounting) device itself, can be authenticated.
  • the image may be a predetermined image that is selected and obtained (such as from a catalog or the like) from the postage metering system provider.
  • the provider is able to control the images that are available for use, and thus can take steps to prevent the use of copyrighted and/or offensive images.
  • predetermined provider images when predetermined provider images are used, the provider can account for the use of such images and therefore charge a fee to users for use of what is considered to be a premium service.
  • Some users desire to have the ability to print custom images that they either create themselves or obtain form a third party source.
  • Custom images however, present a problem as they are not as readily controlled by the provider, and thus it is difficult to prevent the use of copyrighted and/or offensive images. Furthermore, for various reasons, in situations where a custom image is to be used, it is preferred that the custom image (i.e., the data representing the custom image) never actually be received and physically possessed by the provider. This, however, limits the ability of a provider to account for, and thus charge the customer for, the use of the custom image. Thus, there is a need for a system that enables a provider to account and charge for the use of a custom image wherein the provider never actually receives the data representing custom image.
  • the present invention relates to a method of controlling the use of a custom image by a user in a value dispensing system, such as a mail processing system, that enables the system provider to account and charge for the use of the custom image without ever actually receiving the data representing the custom image.
  • the method includes steps of receiving a hash generated from at least the custom image at a provider location, such as a data center, generating a digital signature from data including at least the received hash, accounting for the use of the custom image by the user so that, for example, the user can be charged a fee for the right to use the custom image, and transmitting the digital signature and data used to generate the digital signature to the user at a user location.
  • the digital signature is generated from at least the hash and a custom image identifier for the custom image
  • the transmitting step further includes transmitting the digital signature and at least the hash and the custom image identifier to the user location.
  • the custom image identifier is preferably generated at the provider location.
  • the custom image identifier may be generated at the user location, such as by a user's PC or printer, and transmitted to the provider location.
  • the method may further include additional steps of determining whether the custom image has been disallowed, and allowing the custom image to be printed by the user only if it is determined that the custom image has not been disallowed.
  • the method may further include determining that the custom image should no longer be used because, for example, it is copyrighted material or is offensive, and subsequently transmitting a signal from the provider location to the user location that prevents future printing of the custom image by the user:
  • the method may also further include comparing the hash to one or more second hashes, each of which is generated from at least an image provided to the provider by a third party, and performing the generating, accounting and transmitting steps only if the hash does not match any of the one or more second hashes.
  • the transmitting step may further include transmitting a message to the user location indicating a third party claim of ownership to the custom image if the hash matches any of the one or more second hashes.
  • the present invention also relates to a method of controlling the printing of a custom image at a user location in a value dispensing system, such as a mail processing system, that is operated by a provider wherein the provider has previously transmitted a digital signature to the user location.
  • the digital signature is, in this aspect of the invention, generated from at least a hash of the custom image previously submitted by the user.
  • the method further includes determining whether the digital signature can be successfully verified, and allowing the custom image to be printed by the user only if it is determined that the digital signature can be successfully verified.
  • the digital signature is generated from at least the first hash and a custom image identifier for the custom image.
  • FIG. 1 is a block diagram of one embodiment of a mail processing system according to the present invention.
  • Figures 2 and 3 are flowcharts illustrating the operation of a mail processing system according to the present invention which enables and accounts for the printing of custom images on a mailpiece or a label to be applied to a mailpiece.
  • FIG. 1 is a block diagram of mail processing system 5 according to one particular embodiment of the present invention.
  • mail processing system 5 enables a user to print custom images on a mailpiece or a label to be applied to a mailpiece, and accounts for (and enables the customer to be charged for) the use of the custom image without the provider ever actually receiving the custom image itself.
  • mail processing system 5 is just one particular embodiment of a mail processing system in which the present invention may be implemented, and that the invention as described herein may also be implemented in other open or closed mail processing systems such as those described above.
  • Mail processing system 5 includes a data center 10 that includes a suitable processing system having a computing device such as a server computer and one or more memory components for data storage.
  • the data center 10 is in electronic communication with one or more remotely located computing devices 15 (only one computing device 15 is shown in Figure 1 for purposes of clarity of description) over any suitable communication network 20 such as the Internet.
  • Each computing device 15 may be, for example, a personal computer, a workstation, a laptop computer, a personal data assistant, a cell phone, or the like.
  • the computing devices 15 would be located in, for example, small business offices and/or in private residences and used for a variety of purposes, including obtaining and printing postal indicia as described herein.
  • the data center 10 is maintained and operated by a provider such as an authorized postage meter manufacturer or some other authorized agency.
  • computing device 15 is in electronic communication with a printer 25 that includes a processor 30, such as a microcontroller, a memory 35, and printing hardware 40, such as an ink jet print head and associated print controller, that enables the printing of indicia and images.
  • Memory 35 may be any of a variety of internal and/or external storage media including RAM, ROM, EPROM, EEPROM, and/or the like, alone or in combination.
  • Memory 35 stores one or more routines executable by processor 30 for the processing of data in accordance with the invention as described herein.
  • the routines can be in any of a variety of forms such as, without limitation, software, firmware, and the like, and may include one or more subroutines, processes, procedures, function calls or the like, alone or in combination.
  • Printer 25 in the particular embodiment shown in Figure 1, is a secure postage printing device that is able to print USPS IBIP closed system indicia along with images, preferably near-photo quality gray-scale or color images, on a mailpiece or an adhesive label to be applied to a mailpiece.
  • Memory 35 is able to store evidence of postage payment, as described below, and images that are to be printed.
  • printer 25 does not include a postal security device (PSD), but instead prints indicia that were previously dispensed by an approved PSD associated with data center 10 for specific postage denominations. It will be appreciated, however, that other alternatives are possible, including embodiments where a PSD is located at the customer site.
  • PSD postal security device
  • a user sends a request to purchase postage from computing device 15 to data center 10 through communication network 20.
  • computing device 15 generates a request for a particular number of indicia for one or more particular postage denominations (e.g., twenty $0.37 indicia and twenty $0.74 indicia).
  • the data center 10 generates an appropriate number of postage data records (one for each requested indicium) and securely transmits them (e.g., using an SSL connection) to computing device 15 over communication network 20.
  • the postage data records are encrypted using a secret key that is assigned to the particular printer 25 in question and are digitally signed by the data center 10 before being sent to computing device 15.
  • data center 10 By encrypting the postage data records, data center 10 is able to ensure that only the particular requesting printer 25 may ultimately use the postage data records that were sent.
  • the postage data records are downloaded from the computing device 15 to the printer 25 where they are stored in memory 35 until used by the user to create an indicium that is printed on a mailpiece or a label.
  • printer 25 may be detached from computing device 15 and used as a stand alone postage dispensing device.
  • printer 25 performs the postage printing function only, and postage dispensing and accounting functions are performed by data center 10.
  • mail processing system 5 enables a user to print images, including the user's custom images, on a mailpiece or a label to be applied to a mailpiece.
  • mail processing system 5 also enables a provider (the entity operating data center 10) to account for and charge for the use of the custom image without ever actually receiving the custom image itself (i.e., the data representing the custom image).
  • the term "custom image” shall be understood to include and refer to the data that represents the image.
  • Figure 2 is a flowchart illustrating one embodiment of a method for purchasing the right to use a custom image according to the present invention.
  • the method begins at step 100, where a user of computing device 15 and printer 25 uses computing device 15 to either create or obtain from a third party source the custom image that he or she wishes to print along with indicia using printer 25.
  • the custom image is then downloaded to printer 25 where it is stored in memory 35.
  • the custom image may not, however, actually be printed in conjunction with an indicium until the custom image is accounted for by the provider in the manner described below.
  • printer 25 calculates a hash of the custom image using a hash function such as, without limitation, the SHA-1 or MD5 algorithms.
  • the hash may alternatively be generated by computing device 15.
  • the hash is transmitted from the computing device 15 to the data center 10 through communication network 20.
  • data center 10 generates a custom image identifier, such as a unique serial number or the like, that uniquely identifies the custom image.
  • the custom image identifier includes data that uniquely identifies printer 25, such as the serial number assigned to the printer 25, so that the custom image identifier can be distinguished from any other identifiers associated with other printers 25 in mail processing system 5.
  • the data center 10 After receiving the hash and generating the custom image identifier, the data center 10 generates a digital signature of the combination of the custom image identifier and the hash.
  • the data center 10 possesses a provider public/private key pair.
  • a digital signature of a piece of data X consists of a hash, preferably a one-way hash, of the data X that is combined with a particular private key using a cryptographic algorithm.
  • the data center 10 creates the digital signature by first creating a hash of the combination of the custom image identifier and the hash received from computing device 15 and then employs a cryptographic algorithm to combine that hash with the private key of the data center 10.
  • the data center then accounts for the purchase of the custom image (i.e., the right to use it) so that the user can be charged appropriately.
  • the data center 10 may also store the custom image identifier and the hash received from computing device 15 for subsequent use as described elsewhere herein.
  • the custom image identifier may be created by the printer 25 or computing device 15 and sent to the data center along with the hash.
  • the data center 10 transmits the digital signature created in step 125, the custom image identifier and the hash of the custom image received from the computing device 15 to computing device 15 through communication network 20.
  • the received digital signature, hash and custom image identifier are downloaded to the printer 25 and stored in memory 35.
  • the data center 10 is able to account for and charge for each custom image without ever receiving the custom image itself.
  • FIG 3 is a flowchart illustrating one embodiment of a method for printing a custom image (that has been "paid for," i.e., accounted for by the provider) along with an indicium on a mailpiece or label to be applied to a mailpiece according to the present invention.
  • the method begins at step 140, where the printer 25 obtains the custom image and the associated custom image identifier from memory 35.
  • the custom image may be stored in the memory of and downloaded from the computing device 15.
  • step 145 a determination is made as to whether the custom image identifier is on the list of disallowed images, described in greater detail below, stored by printer 25 or computing device 15.
  • step 150 an error message is provided to the user, such as on a display provided as part of printer 25, that indicates to the user that the custom image in question cannot be used, in this case because it has been disallowed by the data center 10. If, however, the answer at step 145 is no, meaning that the custom image has not been disallowed, then, at step 155, the printer 25 attempts to verify the digital signature previously received from data center 10 and stored in memory 35 that is associated with the custom image in question.
  • printer 25 does so by combining the digital signature, the stored hash of the custom image and the stored custom image identifier (the latter two being used in the generation of the digital signature) with the public key of the data center 10 (preferably obtained from and/or authenticated by a trusted source such as a certificate authority) using a corresponding cryptographic algorithm. If the result of the algorithm at step 160 is an indication that the signature is invalid, then the method proceeds to step 150 to provide an error message to the user because the approval from the data center 10 cannot be verified, If, however, the result of the algorithm at step 160 is an indication that the signature is valid, then, at step 165, printer 25 stores the image in memory 35 for subsequent printing with an indicium.
  • the printer 25 may immediately print the custom image along with an indicium (based on a previously received and stored postage data record) on a mailpiece or a label to be applied to a mailpiece.
  • the custom image identifier, or a portion of the identifier e.g., the portion of the image identifier that contains the printer serial number may be omitted since the serial number may be determined in other ways
  • printing of the image identifier may be omitted.
  • data center 10 stores each of the hashes and each of the corresponding custom image identifiers that are received from users. If the provider is subsequently informed that or otherwise learns that a particular image is being used improperly, e.g., it is copyrighted material being used without authorization or it is offensive in nature, then the provider can take steps to prevent future use of the custom image. Specifically, the provider can "disable" such an image by placing it on, for example, a disallowed image list identified by the corresponding customer identification number. Then, each time that a user contacts data center 10, the data center 10 can send the current disallowed image list to the user's printer 25 for storage thereby and for subsequent use as described in connection with steps 145 of Figure 3.
  • the provider can provide a service to third parties to prevent the unauthorized use of protected images, such as their logos or the like.
  • a third party can provide the provider with a logo, and each time a user submits a custom image for approval as described herein, the submitted hash can be compared to a hash of the logo and the submitted custom image identifier. If a match is found, then the provider can refuse to "approve" use of the custom image (i.e., by not sending the required digital signature back to the user), or can inform the user that the custom image they are attempting to use is claimed to be protected by a third party, and therefore they should use it at their own risk.
  • the present invention provides a system wherein a user can purchase the ability to print custom images from a provider and the provider can account and charge for the use of custom images without the provider ever actually receiving the custom image (the provider only receives a hash of the custom image).
  • the provider will never have knowledge of the content of any of the custom images used by customers, and thus cannot be charged with knowledge that a customer is using a custom image that violates a third party' rights or that is offensive.
  • the system of the invention ensures that a user cannot print a custom image without first having obtained approval from the provider (meaning the provider has accounted for the custom image). The invention further ensures that the provider can disable images should the need arise.
  • Figures 1, 2 and 3 represent one particular embodiment of the invention, and it should be understood that the invention as claimed may be implemented in a number of different mail processing systems, including various known open and closed systems.
  • the concepts of the present invention are not limited to application in the area of postal indicia printing, but may also be used in connection with the printing of any type of indication of value in a value dispensing system, such as, for example, ticketing systems and digital content delivery rights management systems. Accordingly, the invention is not to be considered as limited by the foregoing description but is only limited by the scope of the appended claims.

Abstract

A method of controlling the use of a custom image by a user in a value dispensing system, such as a mail processing system, that enables the system provider to account and charge for the use of the custom image without ever actually receiving the data representing custom image. The method includes steps of receiving a hash generated from at least the custom image at a provider location, such as a data center, generating a digital signature from data including at least the received hash, and transmitting the digital signature and data used to generate the digital signature to the user at a user location. The method may further include additional steps of determining whether the digital signature can be successfully verified, and allowing the custom image to be printed by the user only if it is determined that the digital signature can be successfully verified.

Description

  • The present application is related to co-pending, commonly owned U.S. Patent Application Number 11/142,618, filed May 31, 2006 , entitled SYSTEM AND
    • METHOD FOR RELIABLE TRANSFER OF VIRTUAL STAMPS.
  • The present invention relates to a method for printing information on a mailpiece, and, in particular, to a method for printing custom images on a mailpiece and accounting for the printing of such custom images.
  • Postage metering systems are well known in the art. A postage metering system applies evidence of postage, commonly referred to as postal indicia, to an envelope or other mailpiece (directly or on a label to be applied thereto) and accounts for the value of the postage dispensed.
  • Presently, there are two basic postage metering system types: closed systems and open systems. In a closed system, the system functionality is solely dedicated to postage metering activity. Examples of closed metering systems include conventional digital and analog (electronic and mechanical) postage meters wherein a dedicated printer is securely coupled to a metering or accounting function. In a closed system, since the printer is securely coupled and dedicated to the meter, printing evidence of postage cannot take place without accounting for the evidence of postage. In an open system, the printer is not dedicated to the metering activity, freeing system functionality for multiple and diverse uses in addition to the metering activity. Examples of open metering systems include personal computer (PC) based devices with single/multi-tasking operating systems, multi-user applications and digital printers. An open system metering device is a postage evidencing device with a non-dedicated printer that is not securely coupled to a secure accounting module. Open system indicia printed by the non-dedicated printer are made secure by including addressee information in the encrypted evidence of postage printed on the mailpiece for subsequent verification.
  • Conventional analog closed system postage meters (both electronic and mechanical) have heretofore physically secured the link between printing and accounting. The integrity of the physical meter box has been monitored by periodic physical inspections of the meters. Digital closed system postage meters typically include a dedicated digital printer coupled to a device that provides metering (accounting) functionality. Digital printing postage meters have removed the need for the physical inspection that was required with analog systems by cryptographically securing the link between the accounting and printing mechanisms. In essence, digital printing postage meters create a secure point to point communication link between the accounting unit and printhead.
  • In such digital closed systems, the dedicated printer and the metering (accounting) device may be located in the same device and/or at the same location when placed in operation. Alternatively, the dedicated printer may be located in a first location (i.e., the local location where indicia are to be printed), and the metering (accounting) device may be located in a remote location, such as a provider's data center. In the latter situation, it is still necessary for the dedicated printer to be a secure device having cryptographic capabilities so that postage printing information, such as an indicium, received from the metering (accounting) device, and the metering (accounting) device itself, can be authenticated.
  • Many postage metering system users desire to have the ability to print an image on the mailpiece (or label) in conjunction with the indicium that is printed. For example, the image may be a predetermined image that is selected and obtained (such as from a catalog or the like) from the postage metering system provider. In such a case, the provider is able to control the images that are available for use, and thus can take steps to prevent the use of copyrighted and/or offensive images. In addition, when predetermined provider images are used, the provider can account for the use of such images and therefore charge a fee to users for use of what is considered to be a premium service. Some users, however, desire to have the ability to print custom images that they either create themselves or obtain form a third party source. Custom images, however, present a problem as they are not as readily controlled by the provider, and thus it is difficult to prevent the use of copyrighted and/or offensive images. Furthermore, for various reasons, in situations where a custom image is to be used, it is preferred that the custom image (i.e., the data representing the custom image) never actually be received and physically possessed by the provider. This, however, limits the ability of a provider to account for, and thus charge the customer for, the use of the custom image. Thus, there is a need for a system that enables a provider to account and charge for the use of a custom image wherein the provider never actually receives the data representing custom image.
  • The present invention relates to a method of controlling the use of a custom image by a user in a value dispensing system, such as a mail processing system, that enables the system provider to account and charge for the use of the custom image without ever actually receiving the data representing the custom image. The method includes steps of receiving a hash generated from at least the custom image at a provider location, such as a data center, generating a digital signature from data including at least the received hash, accounting for the use of the custom image by the user so that, for example, the user can be charged a fee for the right to use the custom image, and transmitting the digital signature and data used to generate the digital signature to the user at a user location. Preferably, the digital signature is generated from at least the hash and a custom image identifier for the custom image, and the transmitting step further includes transmitting the digital signature and at least the hash and the custom image identifier to the user location. The custom image identifier is preferably generated at the provider location.
    Alternatively, the custom image identifier may be generated at the user location, such as by a user's PC or printer, and transmitted to the provider location. In addition, the method may further include additional steps of determining whether the custom image has been disallowed, and allowing the custom image to be printed by the user only if it is determined that the custom image has not been disallowed. In addition, the method may further include determining that the custom image should no longer be used because, for example, it is copyrighted material or is offensive, and subsequently transmitting a signal from the provider location to the user location that prevents future printing of the custom image by the user: The method may also further include comparing the hash to one or more second hashes, each of which is generated from at least an image provided to the provider by a third party, and performing the generating, accounting and transmitting steps only if the hash does not match any of the one or more second hashes. Alternatively, the transmitting step may further include transmitting a message to the user location indicating a third party claim of ownership to the custom image if the hash matches any of the one or more second hashes.
  • The present invention also relates to a method of controlling the printing of a custom image at a user location in a value dispensing system, such as a mail processing system, that is operated by a provider wherein the provider has previously transmitted a digital signature to the user location. The digital signature is, in this aspect of the invention, generated from at least a hash of the custom image previously submitted by the user. The method further includes determining whether the digital signature can be successfully verified, and allowing the custom image to be printed by the user only if it is determined that the digital signature can be successfully verified. In the preferred embodiment, the digital signature is generated from at least the first hash and a custom image identifier for the custom image.
  • The accompanying drawings illustrate presently preferred embodiments of the invention, and together with the general description given above and the detailed description given below, serve to explain the principles of the invention. As shown throughout the drawings, like reference numerals designate like or corresponding parts.
  • Figure 1 is a block diagram of one embodiment of a mail processing system according to the present invention; and
  • Figures 2 and 3 are flowcharts illustrating the operation of a mail processing system according to the present invention which enables and accounts for the printing of custom images on a mailpiece or a label to be applied to a mailpiece.
  • Figure 1 is a block diagram of mail processing system 5 according to one particular embodiment of the present invention. As described in greater detail below, mail processing system 5 enables a user to print custom images on a mailpiece or a label to be applied to a mailpiece, and accounts for (and enables the customer to be charged for) the use of the custom image without the provider ever actually receiving the custom image itself. It should be understood that mail processing system 5 is just one particular embodiment of a mail processing system in which the present invention may be implemented, and that the invention as described herein may also be implemented in other open or closed mail processing systems such as those described above.
  • Mail processing system 5 includes a data center 10 that includes a suitable processing system having a computing device such as a server computer and one or more memory components for data storage. The data center 10 is in electronic communication with one or more remotely located computing devices 15 (only one computing device 15 is shown in Figure 1 for purposes of clarity of description) over any suitable communication network 20 such as the Internet. Each computing device 15 may be, for example, a personal computer, a workstation, a laptop computer, a personal data assistant, a cell phone, or the like. Generally, it is anticipated that the computing devices 15 would be located in, for example, small business offices and/or in private residences and used for a variety of purposes, including obtaining and printing postal indicia as described herein. The data center 10 is maintained and operated by a provider such as an authorized postage meter manufacturer or some other authorized agency. As seen in Figure 1, computing device 15 is in electronic communication with a printer 25 that includes a processor 30, such as a microcontroller, a memory 35, and printing hardware 40, such as an ink jet print head and associated print controller, that enables the printing of indicia and images. Memory 35 may be any of a variety of internal and/or external storage media including RAM, ROM, EPROM, EEPROM, and/or the like, alone or in combination. Memory 35 stores one or more routines executable by processor 30 for the processing of data in accordance with the invention as described herein. The routines can be in any of a variety of forms such as, without limitation, software, firmware, and the like, and may include one or more subroutines, processes, procedures, function calls or the like, alone or in combination.
  • Printer 25, in the particular embodiment shown in Figure 1, is a secure postage printing device that is able to print USPS IBIP closed system indicia along with images, preferably near-photo quality gray-scale or color images, on a mailpiece or an adhesive label to be applied to a mailpiece. Memory 35 is able to store evidence of postage payment, as described below, and images that are to be printed. In the embodiment shown in Figure 1, printer 25 does not include a postal security device (PSD), but instead prints indicia that were previously dispensed by an approved PSD associated with data center 10 for specific postage denominations. It will be appreciated, however, that other alternatives are possible, including embodiments where a PSD is located at the customer site. In operation, a user sends a request to purchase postage from computing device 15 to data center 10 through communication network 20. Specifically, computing device 15 generates a request for a particular number of indicia for one or more particular postage denominations (e.g., twenty $0.37 indicia and twenty $0.74 indicia). In response, the data center 10 generates an appropriate number of postage data records (one for each requested indicium) and securely transmits them (e.g., using an SSL connection) to computing device 15 over communication network 20. Preferably, the postage data records are encrypted using a secret key that is assigned to the particular printer 25 in question and are digitally signed by the data center 10 before being sent to computing device 15. By encrypting the postage data records, data center 10 is able to ensure that only the particular requesting printer 25 may ultimately use the postage data records that were sent. When received, the postage data records are downloaded from the computing device 15 to the printer 25 where they are stored in memory 35 until used by the user to create an indicium that is printed on a mailpiece or a label. Once the postage data records (and any images to be printed along with indicia) are stored in memory 35, printer 25 may be detached from computing device 15 and used as a stand alone postage dispensing device. Thus, in the mail processing system 5 shown in Figure 1, printer 25 performs the postage printing function only, and postage dispensing and accounting functions are performed by data center 10.
  • As described above, mail processing system 5 enables a user to print images, including the user's custom images, on a mailpiece or a label to be applied to a mailpiece. In the case of custom images, mail processing system 5 also enables a provider (the entity operating data center 10) to account for and charge for the use of the custom image without ever actually receiving the custom image itself (i.e., the data representing the custom image). When used herein, the term "custom image" shall be understood to include and refer to the data that represents the image. Figure 2 is a flowchart illustrating one embodiment of a method for purchasing the right to use a custom image according to the present invention. The method begins at step 100, where a user of computing device 15 and printer 25 uses computing device 15 to either create or obtain from a third party source the custom image that he or she wishes to print along with indicia using printer 25. The custom image is then downloaded to printer 25 where it is stored in memory 35. The custom image may not, however, actually be printed in conjunction with an indicium until the custom image is accounted for by the provider in the manner described below.
  • Next, at step 105, printer 25 calculates a hash of the custom image using a hash function such as, without limitation, the SHA-1 or MD5 algorithms. As will be appreciated, the hash may alternatively be generated by computing device 15. At step 110, the hash is transmitted from the computing device 15 to the data center 10 through communication network 20. Then, at step 115, data center 10 generates a custom image identifier, such as a unique serial number or the like, that uniquely identifies the custom image. Preferably, the custom image identifier includes data that uniquely identifies printer 25, such as the serial number assigned to the printer 25, so that the custom image identifier can be distinguished from any other identifiers associated with other printers 25 in mail processing system 5. Next, at step 120, after receiving the hash and generating the custom image identifier, the data center 10 generates a digital signature of the combination of the custom image identifier and the hash. In particular, the data center 10 possesses a provider public/private key pair. As is known, a digital signature of a piece of data X consists of a hash, preferably a one-way hash, of the data X that is combined with a particular private key using a cryptographic algorithm. Thus, at step 120, the data center 10 creates the digital signature by first creating a hash of the combination of the custom image identifier and the hash received from computing device 15 and then employs a cryptographic algorithm to combine that hash with the private key of the data center 10. At step 125, the data center then accounts for the purchase of the custom image (i.e., the right to use it) so that the user can be charged appropriately. The data center 10 may also store the custom image identifier and the hash received from computing device 15 for subsequent use as described elsewhere herein. As a further alternative, the custom image identifier may be created by the printer 25 or computing device 15 and sent to the data center along with the hash. Next, at step 130, the data center 10 transmits the digital signature created in step 125, the custom image identifier and the hash of the custom image received from the computing device 15 to computing device 15 through communication network 20. As shown in step 135, the received digital signature, hash and custom image identifier are downloaded to the printer 25 and stored in memory 35. Thus, according to the method shown in Figure 2, the data center 10 is able to account for and charge for each custom image without ever receiving the custom image itself.
  • Figure 3 is a flowchart illustrating one embodiment of a method for printing a custom image (that has been "paid for," i.e., accounted for by the provider) along with an indicium on a mailpiece or label to be applied to a mailpiece according to the present invention. The method begins at step 140, where the printer 25 obtains the custom image and the associated custom image identifier from memory 35. As an alternative, the custom image may be stored in the memory of and downloaded from the computing device 15. Next, at step 145, a determination is made as to whether the custom image identifier is on the list of disallowed images, described in greater detail below, stored by printer 25 or computing device 15. If the answer at step 145 is yes, then at step 150 an error message is provided to the user, such as on a display provided as part of printer 25, that indicates to the user that the custom image in question cannot be used, in this case because it has been disallowed by the data center 10. If, however, the answer at step 145 is no, meaning that the custom image has not been disallowed, then, at step 155, the printer 25 attempts to verify the digital signature previously received from data center 10 and stored in memory 35 that is associated with the custom image in question. As is known, printer 25 does so by combining the digital signature, the stored hash of the custom image and the stored custom image identifier (the latter two being used in the generation of the digital signature) with the public key of the data center 10 (preferably obtained from and/or authenticated by a trusted source such as a certificate authority) using a corresponding cryptographic algorithm. If the result of the algorithm at step 160 is an indication that the signature is invalid, then the method proceeds to step 150 to provide an error message to the user because the approval from the data center 10 cannot be verified, If, however, the result of the algorithm at step 160 is an indication that the signature is valid, then, at step 165, printer 25 stores the image in memory 35 for subsequent printing with an indicium. Alternatively, the printer 25 may immediately print the custom image along with an indicium (based on a previously received and stored postage data record) on a mailpiece or a label to be applied to a mailpiece. According to the preferred embodiment of the invention, the custom image identifier, or a portion of the identifier (e.g., the portion of the image identifier that contains the printer serial number may be omitted since the serial number may be determined in other ways) is printed along with the image in either human or machine readable form for subsequent identification purposes. Alternatively, printing of the image identifier may be omitted.
  • According to a further aspect of the present invention, data center 10 stores each of the hashes and each of the corresponding custom image identifiers that are received from users. If the provider is subsequently informed that or otherwise learns that a particular image is being used improperly, e.g., it is copyrighted material being used without authorization or it is offensive in nature, then the provider can take steps to prevent future use of the custom image. Specifically, the provider can "disable" such an image by placing it on, for example, a disallowed image list identified by the corresponding customer identification number. Then, each time that a user contacts data center 10, the data center 10 can send the current disallowed image list to the user's printer 25 for storage thereby and for subsequent use as described in connection with steps 145 of Figure 3.
  • According to yet a further aspect of the invention, the provider can provide a service to third parties to prevent the unauthorized use of protected images, such as their logos or the like. In particular, a third party can provide the provider with a logo, and each time a user submits a custom image for approval as described herein, the submitted hash can be compared to a hash of the logo and the submitted custom image identifier. If a match is found, then the provider can refuse to "approve" use of the custom image (i.e., by not sending the required digital signature back to the user), or can inform the user that the custom image they are attempting to use is claimed to be protected by a third party, and therefore they should use it at their own risk.
  • Thus, the present invention provides a system wherein a user can purchase the ability to print custom images from a provider and the provider can account and charge for the use of custom images without the provider ever actually receiving the custom image (the provider only receives a hash of the custom image). As a result, the provider will never have knowledge of the content of any of the custom images used by customers, and thus cannot be charged with knowledge that a customer is using a custom image that violates a third party' rights or that is offensive. In addition, the system of the invention ensures that a user cannot print a custom image without first having obtained approval from the provider (meaning the provider has accounted for the custom image). The invention further ensures that the provider can disable images should the need arise.
  • While preferred embodiments of the invention have been described and illustrated above, it should be understood that these are exemplary of the invention and are not to be considered as limiting. Additions, deletions, substitutions, and other modifications can be made without departing from the spirit or scope of the present invention. For example, as stated above, Figures 1, 2 and 3 represent one particular embodiment of the invention, and it should be understood that the invention as claimed may be implemented in a number of different mail processing systems, including various known open and closed systems. In addition, the concepts of the present invention are not limited to application in the area of postal indicia printing, but may also be used in connection with the printing of any type of indication of value in a value dispensing system, such as, for example, ticketing systems and digital content delivery rights management systems. Accordingly, the invention is not to be considered as limited by the foregoing description but is only limited by the scope of the appended claims.

Claims (10)

  1. A method of controlling the use of a custom image by a user at a user location in a value dispensing system, said value dispensing system being operated by a provider, comprising:
    receiving a hash at a provider location from said user location, said hash being generated from said custom image;
    generating a digital signature at said provider location, said digital signature being generated from said hash; and
    transmitting said digital signature and said at least said hash used to generate said digital signature to said user location.
  2. The method according to claim 1, further comprising:
    accounting for the use of said custom image by said user;
    comparing said hash to one or more second hashes, each of said second hashes being generated from an image provided to said provider by a third party; and
    performing said generating, accounting and transmitting steps only if said hash does not match any of said one or more second hashes.
  3. The method according to claim 1, wherein said digital signature is generated from said hash and a custom image identifier for said custom image, and wherein said transmitting step further comprises transmitting said digital signature and said hash and said custom image identifier used to generate said digital signature to said user location, and wherein said receiving step further comprises receiving said custom image identifier at said provider location from said user location, said custom image identifier being generated at said user location and wherein said value dispensing system comprises a mail processing system.
  4. The method according to claim 3, further comprising:
    generating said custom image identifier at said provider location;
    receiving said digital signature at said user location;
    determining whether said digital signature can be successfully verified; and
    allowing said custom image to be printed by said user only if it is determined that said digital signature can be successfully verified.
  5. The method according to claim 2, further comprising:
    storing said hash and said custom image identifier at said provider location;
    determining that said custom image should no longer be used; and
    transmitting information from said provider location to said user location that prevents future printing of said custom image by said user.
  6. The method according to claim 1, further comprising comparing said hash to one or more second hashes, each of said second hashes being generated from an image provided to said provider by a third party, said transmitting step further comprising transmitting a message to said user location indicating a third party claim of ownership to said custom image if said hash matches any of said one or more second hashes.
  7. A method of controlling the printing of a custom image at a user location in a value dispensing system, said value dispensing system being operated by a provider, wherein said provider has previously transmitted a digital signature to said user location, said digital signature being generated from a first hash, said first hash being generated from said custom image, said first hash having been submitted to said provider by said user, the method comprising:
    determining whether said digital signature can be successfully verified; and
    allowing said custom image to be printed by said user only if it is determined that said digital signature can be successfully verified.
  8. The method according to claim 7, wherein said digital signature is generated from said first hash and a custom image identifier for said custom image and wherein said value dispensing system comprises a mail processing system.
  9. The method according to claim 8, wherein said custom image identifier is generated at said user location.
  10. The method according to claim 8, wherein said custom image identifier is generated by said provider.
EP06011209.1A 2005-05-31 2006-05-31 Method to control the use of custom images Not-in-force EP1736933B1 (en)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
US11/142,619 US9898874B2 (en) 2005-05-31 2005-05-31 Method to control the use of custom images

Publications (3)

Publication Number Publication Date
EP1736933A2 true EP1736933A2 (en) 2006-12-27
EP1736933A3 EP1736933A3 (en) 2007-03-21
EP1736933B1 EP1736933B1 (en) 2016-10-19

Family

ID=37025096

Family Applications (1)

Application Number Title Priority Date Filing Date
EP06011209.1A Not-in-force EP1736933B1 (en) 2005-05-31 2006-05-31 Method to control the use of custom images

Country Status (4)

Country Link
US (1) US9898874B2 (en)
EP (1) EP1736933B1 (en)
CN (1) CN1908986B (en)
CA (1) CA2548888A1 (en)

Families Citing this family (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP4986689B2 (en) * 2006-05-22 2012-07-25 キヤノン株式会社 Information processing apparatus, printing system, job processing method, and program
US10839332B1 (en) 2006-06-26 2020-11-17 Stamps.Com Image-customized labels adapted for bearing computer-based, generic, value-bearing items, and systems and methods for providing image-customized labels
US8308819B2 (en) * 2006-12-19 2012-11-13 Pitney Bowes Inc. Method for detecting the removal of a processing unit from a printed circuit board
CN101364869B (en) * 2007-08-09 2012-03-28 鸿富锦精密工业(深圳)有限公司 Electronic document digital checking system and method
US7954145B2 (en) * 2007-09-27 2011-05-31 Novell, Inc. Dynamically configuring a client for virtual private network (VPN) access
WO2009073895A1 (en) * 2007-12-07 2009-06-11 Verimatrix, Inc. Systems and methods for performing semantic analysis of media objects
US8281407B2 (en) * 2008-12-09 2012-10-02 Pitney Bowes Inc. In-line decryption device for securely printing documents
US8626824B2 (en) * 2010-02-26 2014-01-07 Red Hat Israel, Ltd. Persisting graphics structures across resolution change in graphics remoting environment
US8230008B2 (en) * 2010-02-26 2012-07-24 Red Hat Israel, Ltd. Persisting graphics structures across client change in graphics remoting environment
CN104461411A (en) * 2014-11-10 2015-03-25 占红武 Individual postmark printing system
CN104537420A (en) * 2014-12-18 2015-04-22 占红武 Personalized ticket manufacturing system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0782108A2 (en) * 1995-12-19 1997-07-02 Pitney Bowes Inc. A method generating digital tokens from a subset of addressee information
US6424954B1 (en) * 1998-02-17 2002-07-23 Neopost Inc. Postage metering system
US20030074325A1 (en) * 2001-10-05 2003-04-17 Pitney Bowes Method and system for dispensing virtual stamps
WO2004012053A2 (en) * 2002-07-29 2004-02-05 United States Postal Service Pc postagetm service indicia design for shipping label

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH04310188A (en) * 1991-03-01 1992-11-02 Internatl Business Mach Corp <Ibm> Library service method for document/image library
US5801856A (en) * 1996-07-24 1998-09-01 Eastman Kodak Company Secure photographic systems
US6005945A (en) * 1997-03-20 1999-12-21 Psi Systems, Inc. System and method for dispensing postage based on telephonic or web milli-transactions
US6178412B1 (en) * 1999-04-19 2001-01-23 Pitney Bowes Inc. Postage metering system having separable modules with multiple currency capability and synchronization
US6907527B1 (en) * 2000-10-17 2005-06-14 International Business Machines Corporation Cryptography-based low distortion robust data authentication system and method therefor
US7194630B2 (en) * 2002-02-27 2007-03-20 Canon Kabushiki Kaisha Information processing apparatus, information processing system, information processing method, storage medium and program
JP4245883B2 (en) * 2002-09-13 2009-04-02 株式会社日立製作所 Authenticity management method and system for electronic document and print medium thereof, program, and recording medium
US20050114276A1 (en) * 2003-11-20 2005-05-26 Hunter Valerie K. Personal customization of stamps

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0782108A2 (en) * 1995-12-19 1997-07-02 Pitney Bowes Inc. A method generating digital tokens from a subset of addressee information
US6424954B1 (en) * 1998-02-17 2002-07-23 Neopost Inc. Postage metering system
US20030074325A1 (en) * 2001-10-05 2003-04-17 Pitney Bowes Method and system for dispensing virtual stamps
WO2004012053A2 (en) * 2002-07-29 2004-02-05 United States Postal Service Pc postagetm service indicia design for shipping label

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
UNITED STATES POSTAL SERVICE: "Performance Criteria For Information-Based Indicia And Security Architecture For Open IBI Postage Evidencing Systems" INFORMATION BASED INDICIA PROGRAM. PERFORMANCE CRITERIA FOR INFORMATION-BASED INDICIA AND SECURITY ARCHITECTURE FOR OPEN IBI POSTAGE EVIDENCING SYSTEMS, 25 June 1999 (1999-06-25), XP002161216 *

Also Published As

Publication number Publication date
CN1908986A (en) 2007-02-07
US9898874B2 (en) 2018-02-20
CA2548888A1 (en) 2006-11-30
US20060271500A1 (en) 2006-11-30
CN1908986B (en) 2011-12-07
EP1736933B1 (en) 2016-10-19
EP1736933A3 (en) 2007-03-21

Similar Documents

Publication Publication Date Title
US9898874B2 (en) Method to control the use of custom images
US7778924B1 (en) System and method for transferring items having value
JP4117912B2 (en) Virtual postage meter with secure digital signature device
AU756905B2 (en) Closed system virtual postage meter
US6005945A (en) System and method for dispensing postage based on telephonic or web milli-transactions
US7251632B1 (en) Machine dependent login for on-line value-bearing item system
US8438115B2 (en) Method of securing postage data records in a postage printing device
US7152049B2 (en) Method and system for dispensing virtual stamps
JPH09223177A (en) System and method for safe user certification for electronic commercial trade
HRP20031076A2 (en) Method for verifying the validity of digital franking notes
AU2002330240A1 (en) Method and system for dispensing virtual stamps
US7240037B1 (en) Method and apparatus for digitally signing an advertisement area next to a value-bearing item
US20060259444A1 (en) System and method for reliable transfer of virtual stamps
JP2008513857A (en) Method and equipment for postage payment
JP2006527512A (en) Method for proof of validity of digital fee payment note and apparatus for its execution
US20080071691A1 (en) Method and Device for Franking Postal Items
US20080109359A1 (en) Value Transfer Center System
EP1224631A2 (en) Machine dependent login for on-line value-bearing item system
MXPA99001576A (en) Virtual postage meter with secure digital signature device
NZ553946A (en) Method and device for franking mail

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

AK Designated contracting states

Kind code of ref document: A2

Designated state(s): AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LI LT LU LV MC NL PL PT RO SE SI SK TR

AX Request for extension of the european patent

Extension state: AL BA HR MK YU

PUAL Search report despatched

Free format text: ORIGINAL CODE: 0009013

AK Designated contracting states

Kind code of ref document: A3

Designated state(s): AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LI LT LU LV MC NL PL PT RO SE SI SK TR

AX Request for extension of the european patent

Extension state: AL BA HR MK YU

17P Request for examination filed

Effective date: 20070823

17Q First examination report despatched

Effective date: 20071019

AKX Designation fees paid

Designated state(s): CH DE FR GB LI

REG Reference to a national code

Ref country code: DE

Ref legal event code: R079

Ref document number: 602006050595

Country of ref document: DE

Free format text: PREVIOUS MAIN CLASS: G07B0017000000

Ipc: G06Q0020380000

GRAP Despatch of communication of intention to grant a patent

Free format text: ORIGINAL CODE: EPIDOSNIGR1

RIC1 Information provided on ipc code assigned before grant

Ipc: G07B 17/00 20060101ALI20160115BHEP

Ipc: G06Q 20/38 20120101AFI20160115BHEP

INTG Intention to grant announced

Effective date: 20160209

RIN1 Information on inventor provided before grant (corrected)

Inventor name: RYAN, FREDERICK W.

Inventor name: OBREA, ANDREI

RAP1 Party data changed (applicant data changed or rights of an application transferred)

Owner name: PITNEY BOWES, INC.

GRAP Despatch of communication of intention to grant a patent

Free format text: ORIGINAL CODE: EPIDOSNIGR1

INTG Intention to grant announced

Effective date: 20160512

GRAS Grant fee paid

Free format text: ORIGINAL CODE: EPIDOSNIGR3

GRAA (expected) grant

Free format text: ORIGINAL CODE: 0009210

AK Designated contracting states

Kind code of ref document: B1

Designated state(s): CH DE FR GB LI

REG Reference to a national code

Ref country code: GB

Ref legal event code: FG4D

REG Reference to a national code

Ref country code: CH

Ref legal event code: EP

REG Reference to a national code

Ref country code: DE

Ref legal event code: R096

Ref document number: 602006050595

Country of ref document: DE

REG Reference to a national code

Ref country code: FR

Ref legal event code: PLFP

Year of fee payment: 12

REG Reference to a national code

Ref country code: DE

Ref legal event code: R097

Ref document number: 602006050595

Country of ref document: DE

PGFP Annual fee paid to national office [announced via postgrant information from national office to epo]

Ref country code: GB

Payment date: 20170530

Year of fee payment: 12

Ref country code: DE

Payment date: 20170530

Year of fee payment: 12

Ref country code: FR

Payment date: 20170525

Year of fee payment: 12

PLBE No opposition filed within time limit

Free format text: ORIGINAL CODE: 0009261

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: NO OPPOSITION FILED WITHIN TIME LIMIT

26N No opposition filed

Effective date: 20170720

REG Reference to a national code

Ref country code: CH

Ref legal event code: PL

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: CH

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20170531

Ref country code: LI

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20170531

REG Reference to a national code

Ref country code: DE

Ref legal event code: R119

Ref document number: 602006050595

Country of ref document: DE

GBPC Gb: european patent ceased through non-payment of renewal fee

Effective date: 20180531

PG25 Lapsed in a contracting state [announced via postgrant information from national office to epo]

Ref country code: GB

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20180531

Ref country code: DE

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20181201

Ref country code: FR

Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES

Effective date: 20180531